RTWUse Cases for a #WhoisLookup
#IncidentResponse and #ThreatIntelligence
The most obvious benefits of a whois lookup for those responding to a #security #incident is identifying the #netblock and #ISP that owns a particular #IPaddress. From this information the incident responder can contact the owner of the netblock in order to alert the provider to the presence of #malicioustraffic.